Unbreakable Enterprise kernel-container security update

2021-08-1000:00:00

linux.oracle.com

100

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

JSON

[4.14.35-2047.506.8.el7]

A/A Bonding: dev_hold/put() the delayed GARP work handler’s netdev in rdmaip (Sharath Srinivasan) [Orabug: 33187189]
rds/ib: quarantine STALE mr before dereg (Manjunath Patil) [Orabug: 33187192]
rds/ib: avoid dereg of mr in frwr_clean (Manjunath Patil) [Orabug: 33187195]
rds/ib: update mr incarnation after forming inv wr (Manjunath Patil) [Orabug: 33187199]
rds: ib: Increase entropy of RDMA IOVAs (Hakon Bugge) [Orabug: 33187200]
[4.14.35-2047.506.7.el7]
scsi: core: Retry I/O for Notify (Enable Spinup) Required error (Quat Le) [Orabug: 33167357]
Revert ‘x86/reboot: Force all cpus to exit VMX root if VMX is supported’ (Somasundaram Krishnasamy) [Orabug: 33167350]
[4.14.35-2047.506.6.el7]
rds: Check for illegal flags when creating an MR (Hakon Bugge) [Orabug: 33144339]
seq_file: disallow extremely large seq buffer allocations (Eric Sandeen) [Orabug: 33135633] {CVE-2021-33909}
[4.14.35-2047.506.5.el7]
xen/blkback: Force flush and secure discard support flags (Boris Ostrovsky)
[Orabug: 33131619]
[4.14.35-2047.506.4.el7]
rds/ib: avoid use of trace_printk() (Alan Maguire) [Orabug: 33120588]
RDMA/cma: Remove unnecessary INIT->INIT transition (Hakon Bugge) [Orabug: 33114515]
ext4: use ext4_grp_locked_error in mb_find_extent (Stephen Brennan) [Orabug: 33027709]
[4.14.35-2047.506.3.el7]
capmem: Mark the pages as non-readonly+dirty. (David Clear) [Orabug: 33116008]
PCI/ERR: Retain status from error notification (Keith Busch) [Orabug: 32747989]
NFSv4: nfs4_proc_set_acl needs to restore NFS_CAP_UIDGID_NOMAP on error. (Dai Ngo) [Orabug: 33106366]
net/mlx4: Fix EEPROM dump support (Vladyslav Tarasiuk) [Orabug: 31895299] {CVE-2020-14304}
[4.14.35-2047.506.2.el7]
KVM: VMX: Consider PID.PIR to determine if vCPU has pending interrupts (Joao Martins) [Orabug: 33089240]
mm: hugetlb: soft-offline: dissolve_free_huge_page() return zero on !PageHuge (Naoya Horiguchi) [Orabug: 33042327]
mm: soft-offline: return -EBUSY if set_hwpoison_free_buddy_page() fails (Naoya Horiguchi) [Orabug: 33042327]
mm: soft-offline: close the race against page allocation (Naoya Horiguchi) [Orabug: 33042327]
mm: fix race on soft-offlining free huge pages (Naoya Horiguchi) [Orabug: 33042327]
Revert ‘xen/fb: allow xenfb initialization for hvm guests’ (Joe Jin) [Orabug: 33075317]
scsi: qla2xxx: Fix use after free in bsg (Quinn Tran) [Orabug: 32912131]
block: fix a race between del_gendisk and BLKRRPART (Gulam Mohamed) [Orabug: 32285697]
block: prevent block device lookups at the beginning of del_gendisk (Christoph Hellwig) [Orabug: 32285697]
block: take bd_mutex around delete_partitions in del_gendisk (Christoph Hellwig) [Orabug: 32285697]
Linux 4.14.231 (Greg Kroah-Hartman)
xen/events: fix setting irq affinity (Juergen Gross)
perf map: Tighten snprintf() string precision to pass gcc check on some 32-bit arches (Arnaldo Carvalho de Melo)
netfilter: x_tables: fix compat match/target pad out-of-bound write (Florian Westphal)
net: phy: broadcom: Only advertise EEE for supported modes (Florian Fainelli)
block: only update parent bi_status when bio fail (Yufen Yu)
gfs2: report ‘already frozen/thawed’ errors (Bob Peterson)
drm/imx: imx-ldb: fix out of bounds array access warning (Arnd Bergmann)
KVM: arm64: Disable guest access to trace filter controls (Suzuki K Poulose)
KVM: arm64: Hide system instruction access to Trace registers (Suzuki K Poulose)
Revert ‘cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath.’ (Greg Kroah-Hartman)
net: ieee802154: stop dump llsec params for monitors (Alexander Aring)
net: ieee802154: forbid monitor for del llsec seclevel (Alexander Aring)
net: ieee802154: forbid monitor for set llsec params (Alexander Aring)
net: ieee802154: fix nl802154 del llsec devkey (Alexander Aring)
net: ieee802154: fix nl802154 add llsec key (Alexander Aring)
net: ieee802154: fix nl802154 del llsec key (Alexander Aring)
net: ieee802154: nl-mac: fix check on panid (Alexander Aring)
net: mac802154: Fix general protection fault (Pavel Skripkin)
drivers: net: fix memory leak in peak_usb_create_dev (Pavel Skripkin)
drivers: net: fix memory leak in atusb_probe (Pavel Skripkin)
net: tun: set tun->dev->addr_len during TUNSETLINK processing (Phillip Potter)
cfg80211: remove WARN_ON() in cfg80211_sme_connect (Du Cheng)
usbip: fix vudc usbip_sockfd_store races leading to gpf (Shuah Khan)
net/ncsi: Avoid GFP_KERNEL in response handler (Samuel Mendoza-Jonas)
net/ncsi: Refactor MAC, VLAN filters (Samuel Mendoza-Jonas)
net/ncsi: Add generic netlink family (Samuel Mendoza-Jonas)
net/ncsi: Don’t return error on normal response (Samuel Mendoza-Jonas)
net/ncsi: Improve general state logging (Samuel Mendoza-Jonas)
net/ncsi: Make local function ncsi_get_filter() static (Wei Yongjun)
clk: socfpga: fix iomem pointer cast on 64-bit (Krzysztof Kozlowski)
RDMA/cxgb4: check for ipv6 address properly while destroying listener (Potnuri Bharat Teja)
net/mlx5: Fix placement of log_max_flow_counter (Raed Salem)
s390/cpcmd: fix inline assembly register clobbering (Alexander Gordeev)
workqueue: Move the position of debug_work_activate() in __queue_work() (Zqiang)
clk: fix invalid usage of list cursor in unregister (Lukasz Bartosik)
clk: fix invalid usage of list cursor in register (Lukasz Bartosik)
soc/fsl: qbman: fix conflicting alignment attributes (Arnd Bergmann)
ASoC: sunxi: sun4i-codec: fill ASoC card owner (Bastian Germann)
net/ncsi: Avoid channel_monitor hrtimer deadlock (Milton Miller)
ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces (Stefan Riedmueller)
net:tipc: Fix a double free in tipc_sk_mcast_rcv (Lv Yunlong)
gianfar: Handle error code at MAC address change (Claudiu Manoil)
sch_red: fix off-by-one checks in red_check_params() (Eric Dumazet)
amd-xgbe: Update DMA coherency values (Shyam Sundar S K)
ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (Shengjiu Wang)
regulator: bd9571mwv: Fix AVS and DVFS voltage range (Geert Uytterhoeven)
i2c: turn recovery error on init to debug (Wolfram Sang)
usbip: synchronize event handler with sysfs code paths (Shuah Khan)
usbip: stub-dev synchronize sysfs code paths (Shuah Khan)
usbip: add sysfs_lock to synchronize sysfs code paths (Shuah Khan)
net: sched: sch_teql: fix null-pointer dereference (Pavel Tikhomirov)
net: ensure mac header is set in virtio_net_hdr_to_skb() (Eric Dumazet)
batman-adv: initialize ‘struct batadv_tvlv_tt_vlan_data’->reserved field (Tetsuo Handa)
ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin (Marek Behun)
parisc: avoid a warning on u8 cast for cmpxchg on u8 pointers (Gao Xiang)
parisc: parisc-agp requires SBA IOMMU driver (Helge Deller)
fs: direct-io: fix missing sdio->boundary (Jack Qiu)
ia64: fix user_stack_pointer() for ptrace() (Sergei Trofimovich)
net: ipv6: check for validity before dereferencing cfg->fc_nlinfo.nlh (Muhammad Usama Anjum)
xen/evtchn: Change irq_info lock to raw_spinlock_t (Luca Fancellu)
nfc: Avoid endless loops caused by repeated llcp_sock_connect() (Xiaoming Ni)
nfc: fix memory leak in llcp_sock_connect() (Xiaoming Ni) {CVE-2020-25672}
nfc: fix refcount leak in llcp_sock_connect() (Xiaoming Ni) {CVE-2020-25671}
nfc: fix refcount leak in llcp_sock_bind() (Xiaoming Ni) {CVE-2020-25670}
ASoC: intel: atom: Stop advertising non working S24LE support (Hans de Goede)
ALSA: aloop: Fix initialization of controls (Jonas Holmberg)
Linux 4.14.230 (Greg Kroah-Hartman)
can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (Angelo Dureghello)
init/Kconfig: make COMPILE_TEST depend on HAS_IOMEM (Masahiro Yamada)
init/Kconfig: make COMPILE_TEST depend on !S390 (Heiko Carstens)
cifs: Silently ignore unknown oplock break handle (Vincent Whitchurch)
cifs: revalidate mapping when we open files for SMB1 POSIX (Ronnie Sahlberg)
ia64: mca: allocate early mca with GFP_ATOMIC (Sergei Trofimovich)
scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (Martin Wilck)
x86/build: Turn off -fcf-protection for realmode targets (Arnd Bergmann)
platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (Esteve Varela Colominas)
drm/msm: Ratelimit invalid-fence message (Rob Clark)
mac80211: choose first enabled channel for monitor (Karthikeyan Kathirvel)
mISDN: fix crash in fritzpci (Tong Zhang)
net: pxa168_eth: Fix a potential data race in pxa168_eth_remove (Pavel Andrianov)
ARM: dts: am33xx: add aliases for mmc interfaces (Mans Rullgard)
Linux 4.14.229 (Greg Kroah-Hartman)
drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (Du Cheng)
staging: rtl8192e: Change state information from u16 to u8 (Atul Gopinathan)
staging: rtl8192e: Fix incorrect source in memcpy() (Atul Gopinathan)
usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (Tong Zhang)
USB: cdc-acm: fix use-after-free after probe failure (Johan Hovold)
USB: cdc-acm: downgrade message to debug (Oliver Neukum)
USB: cdc-acm: untangle a circular dependency between callback and softint (Oliver Neukum)
cdc-acm: fix BREAK rx code path adding necessary calls (Oliver Neukum)
usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (Chunfeng Yun)
usb: musb: Fix suspend with devices connected for a64 (Tony Lindgren)
USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (Vincent Palatin)
usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (Shuah Khan)
firewire: nosy: Fix a use-after-free bug in nosy_ioctl() (Zheyu Ma)
extcon: Fix error handling in extcon_dev_register (Dinghao Liu)
extcon: Add stubs for extcon_register_notifier_all() functions (Krzysztof Kozlowski)
pinctrl: rockchip: fix restore error in resume (Wang Panzhenzhuan)
reiserfs: update reiserfs_xattrs_initialized() condition (Tetsuo Handa)
drm/amdgpu: check alignment on CPU page for bo map (Xi Ruoyao)
drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (Nirmoy Das)
mm: fix race by making init_zero_pfn() early_initcall (Ilya Lipnitskiy)
tracing: Fix stack trace event size (Steven Rostedt (VMware))
ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (Hui Wang)
ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (Hui Wang)
ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (Ikjoon Jang)
bpf: Remove MTU check in __bpf_skb_max_len (Jesper Dangaard Brouer)
net: wan/lmc: unregister device when no matching device is found (Tong Zhang)
appletalk: Fix skb allocation size in loopback case (Doug Brown)
net: ethernet: aquantia: Handle error cleanup of start on open (Nathan Rossi)
brcmfmac: clear EAP/association status bits on linkdown events (Luca Pesce)
ext4: do not iput inode under running transaction in ext4_rename() (zhangyi (F))
ASoC: rt5659: Update MCLK rate in set_sysclk() (Sameer Pujar)
staging: comedi: cb_pcidas64: fix request_irq() warn (Tong Zhang)
staging: comedi: cb_pcidas: fix request_irq() warn (Tong Zhang)
scsi: qla2xxx: Fix broken #endif placement (Alexey Dobriyan)
scsi: st: Fix a use after free in st_open() (Lv Yunlong)
vhost: Fix vhost_vq_reset() (Laurent Vivier)
powerpc: Force inlining of cpu_has_feature() to avoid build failure (Christophe Leroy)
ASoC: cs42l42: Always wait at least 3ms after reset (Lucas Tanure)
ASoC: cs42l42: Fix mixer volume control (Lucas Tanure)
ASoC: es8316: Simplify adc_pga_gain_tlv table (Hans de Goede)
ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (Benjamin Rood)
ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (Hans de Goede)
ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (Hans de Goede)
rpc: fix NULL dereference on kmalloc failure (J. Bruce Fields)
ext4: fix bh ref count on error paths (Zhaolong Zhang)
ipv6: weaken the v4mapped source check (Jakub Kicinski)
selinux: vsock: Set SID for socket returned by accept() (David Brazdil)
Linux 4.14.228 (Greg Kroah-Hartman)
can: peak_usb: Revert ‘can: peak_usb: add forgotten supported devices’ (Marc Kleine-Budde)
ext4: add reclaim checks to xattr code (Jan Kara)
mac80211: fix double free in ibss_leave (Markus Theil)
net: qrtr: fix a kernel-infoleak in qrtr_recvmsg() (Eric Dumazet)
net: sched: validate stab values (Eric Dumazet)
can: dev: Move device back to init netns on owning netns delete (Martin Willi)
locking/mutex: Fix non debug version of mutex_lock_io_nested() (Thomas Gleixner)
scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (Jia-Ju Bai)
scsi: qedi: Fix error return code of qedi_alloc_global_queues() (Jia-Ju Bai)
perf auxtrace: Fix auxtrace queue conflict (Adrian Hunter)
ACPI: scan: Use unique number for instance_no (Andy Shevchenko)
ACPI: scan: Rearrange memory allocation in acpi_device_add() (Rafael J. Wysocki)
RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (Potnuri Bharat Teja)
net/mlx5e: Fix error path for ethtool set-priv-flag (Aya Levin)
arm64: kdump: update ppos when reading elfcorehdr (Pavel Tatashin)
drm/msm: fix shutdown hook in case GPU components failed to bind (Dmitry Baryshkov)
net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes (Corentin Labbe)
net: cdc-phonet: fix data-interface release on probe failure (Johan Hovold)
mac80211: fix rate mask reset (Johannes Berg)
can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (Torin Cooper-Bennun)
can: c_can: move runtime PM enable/disable to c_can_platform (Tong Zhang)
can: c_can_pci: c_can_pci_remove(): fix use-after-free (Tong Zhang)
ftgmac100: Restart MAC HW once (Dylan Hung)
net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (Lv Yunlong)
e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (Dinghao Liu)
e1000e: add rtnl_lock() to e1000_reset_task (Vitaly Lifshits)
net: dsa: bcm_sf2: Qualify phydev->dev_flags based on port (Florian Fainelli)
macvlan: macvlan_count_rx() needs to be aware of preemption (Eric Dumazet)
libbpf: Fix INSTALL flag order (Georgi Valkov)
bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (Grygorii Strashko)
ARM: dts: at91-sama5d27_som1: fix phy address to 7 (Claudiu Beznea)
arm64: dts: ls1043a: mark crypto engine dma coherent (Horia Geanta)
arm64: dts: ls1012a: mark crypto engine dma coherent (Horia Geanta)
arm64: dts: ls1046a: mark crypto engine dma coherent (Horia Geanta)
squashfs: fix xattr id and id lookup sanity checks (Phillip Lougher)
squashfs: fix inode lookup sanity checks (Sean Nyekjaer)
ia64: fix ptrace(PTRACE_SYSCALL_INFO_EXIT) sign (Sergei Trofimovich)
ia64: fix ia64_syscall_get_set_arguments() for break-based syscalls (Sergei Trofimovich)
nfs: we don’t support removing system.nfs4_acl (J. Bruce Fields)
drm/radeon: fix AGP dependency (Christian Konig)
u64_stats,lockdep: Fix u64_stats_init() vs lockdep (Peter Zijlstra)
sparc64: Fix opcode filtering in handling of no fault loads (Rob Gardner)
atm: idt77252: fix null-ptr-dereference (Tong Zhang)
atm: uPD98402: fix incorrect allocation (Tong Zhang)
net: wan: fix error return code of uhdlc_init() (Jia-Ju Bai)
net: hisilicon: hns: fix error return code of hns_nic_clear_all_rx_fetch() (Jia-Ju Bai)
NFS: Correct size calculation for create reply length (Frank Sorenson)
nfs: fix PNFS_FLEXFILE_LAYOUT Kconfig default (Timo Rothenpieler)
gpiolib: acpi: Add missing IRQF_ONESHOT (Yang Li)
sun/niu: fix wrong RXMAC_BC_FRM_CNT_COUNT count (Denis Efremov)
net: tehuti: fix error return code in bdx_probe() (Jia-Ju Bai)
ixgbe: Fix memleak in ixgbe_configure_clsu32 (Dinghao Liu)
Revert ‘r8152: adjust the settings about MAC clock speed down for RTL8153’ (Hayes Wang)
atm: lanai: dont run lanai_dev_close if not open (Tong Zhang)
atm: eni: dont release is never initialized (Tong Zhang)
powerpc/4xx: Fix build errors from mfdcr() (Michael Ellerman)
net: fec: ptp: avoid register access when ipg clock is disabled (Heiko Thiery)
[4.14.35-2047.506.1.el7]
drivers/uio: Fix incorrect calls to pm_runtime_enable/disable. (David Clear) [Orabug: 33070176]
dts/pensando: Add board config partitions. (David Clear) [Orabug: 33070176]
drivers: updates driver version string to 1.15.9.7 (Thomas Tai) [Orabug: 33065280]
drivers: updates for 1.15.9.7 (Shannon Nelson) [Orabug: 33065280]
arm64: Stop printing the virtual memory layout (Laura Abbott) [Orabug: 33059865]
uek-rpm: Fix Pensando’s network application error (Thomas Tai) [Orabug: 33050671]
RDMA/cma: Fix rdma_resolve_route memory leak (Gerd Rausch) [Orabug: 33048382]
uek-rpm: enable selinux for Pensando (Thomas Tai) [Orabug: 33032940]
scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (Quinn Tran) [Orabug: 32989009]
xfs: fix lockup issue (Junxiao Bi) [Orabug: 32880215]
Build Pensando drivers for uek5 kernel (Vijay Kumar) [Orabug: 32569849]
net/ethernet/pensando: Fix Pensando driver build (Vijay Kumar) [Orabug: 32569849]
Added mdev, mnet_uio_pdrv and ionic_mnic driver src to UEK5 (Vijay Kumar) [Orabug: 32569849]
Linux 4.14.227 (Greg Kroah-Hartman)
genirq: Disable interrupts for force threaded handlers (Thomas Gleixner)
ext4: fix potential error in ext4_do_update_inode (Shijie Luo)
ext4: do not try to set xattr into ea_inode if value is empty (zhangyi (F))
ext4: find old entry again if failed to rename whiteout (zhangyi (F))
x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (Oleg Nesterov)
x86: Move TS_COMPAT back to asm/thread_info.h (Oleg Nesterov)
kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (Oleg Nesterov)
x86/ioapic: Ignore IRQ2 again (Thomas Gleixner)
PCI: rpadlpar: Fix potential drc_name corruption in store functions (Tyrel Datwyler)
iio: hid-sensor-temperature: Fix issues of timestamp channel (Ye Xiang)
iio: hid-sensor-prox: Fix scale not correct issue (Ye Xiang)
iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (Ye Xiang)
iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (Dinghao Liu)
iio: adis16400: Fix an error code in adis16400_initial_setup() (Dan Carpenter)
iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (Jonathan Albrieux)
iio:adc:stm32-adc: Add HAS_IOMEM dependency (Jonathan Cameron)
usb: gadget: configfs: Fix KASAN use-after-free (Jim Lin)
USB: replace hardcode maximum usb string length by definition (Macpaul Lin)
usb-storage: Add quirk to defeat Kindle’s automatic unload (Alan Stern)
nvme-rdma: fix possible hang when failing to set io queues (Sagi Grimberg)
scsi: lpfc: Fix some error codes in debugfs (Dan Carpenter)
net/qrtr: fix __netdev_alloc_skb call (Pavel Skripkin)
sunrpc: fix refcount leak for rpc auth modules (Daniel Kobras)
svcrdma: disable timeouts on rdma backchannel (Timo Rothenpieler)
NFSD: Repair misuse of sv_lock in 5.10.16-rt30. (Joe Korty)
nvmet: don’t check iosqes,iocqes for discovery controllers (Sagi Grimberg)
tools build feature: Check if pthread_barrier_t is available (Arnaldo Carvalho de Melo)
perf: Make perf able to build with latest libbfd (Changbin Du)
tools build: Check if gettid() is available before providing helper (Arnaldo Carvalho de Melo)
tools build feature: Check if eventfd() is available (Arnaldo Carvalho de Melo)
tools build feature: Check if get_current_dir_name() is available (Arnaldo Carvalho de Melo)
perf tools: Use - Revert ‘PM: runtime: Update device status before letting suppliers suspend’ (Rafael J. Wysocki)
net: dsa: b53: Support setting learning on port (Florian Fainelli)
bpf: Fix off-by-one for area size in creating mask to left (Piotr Krysiuk)
ext4: check journal inode extents more carefully (Jan Kara)
ext4: don’t allow overlapping system zones (Jan Kara)
Linux 4.14.226 (Greg Kroah-Hartman)
xen/events: avoid handling the same event on two cpus at the same time (Juergen Gross)
xen/events: don’t unmask an event channel when an eoi is pending (Juergen Gross)
xen/events: reset affinity of 2-level event when tearing it down (Juergen Gross)
iio: imu: adis16400: release allocated memory on failure (Navid Emamdoost)
KVM: arm64: Fix exclusive limit for IPA size (Marc Zyngier)
hwmon: (lm90) Fix max6658 sporadic wrong temperature reading (Boyang Yu)
binfmt_misc: fix possible deadlock in bm_register_write (Lior Ribak)
powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (Naveen N. Rao)
include/linux/sched/mm.h: use rcu_dereference in in_vfork() (Matthew Wilcox (Oracle))
stop_machine: mark helpers __always_inline (Arnd Bergmann)
configfs: fix a use-after-free in __configfs_open_file (Daiyue Zhang)
block: rsxx: fix error return code of rsxx_pci_probe() (Jia-Ju Bai)
NFSv4.2: fix return value of _nfs4_get_security_label() (Ondrej Mosnacek)
sh_eth: fix TRSCER mask for R7S72100 (Sergey Shtylyov)
staging: comedi: pcl818: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: pcl711: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: me4000: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: dmm32at: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: das800: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: das6402: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: adv_pci1710: Fix endian problem for AI command data (Ian Abbott)
staging: comedi: addi_apci_1500: Fix endian problem for command sample (Ian Abbott)
staging: comedi: addi_apci_1032: Fix endian problem for COS sample (Ian Abbott)
staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (Lee Gibson)
staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (Lee Gibson)
staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (Dan Carpenter)
staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (Dan Carpenter)
staging: rtl8712: unterminated string leads to read overflow (Dan Carpenter)
staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (Dan Carpenter)
staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (Dan Carpenter)
usbip: fix vhci_hcd attach_store() races leading to gpf (Shuah Khan)
usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (Shuah Khan)
usbip: fix vudc to check for stream socket (Shuah Khan)
usbip: fix vhci_hcd to check for stream socket (Shuah Khan)
usbip: fix stub_dev to check for stream socket (Shuah Khan)
USB: serial: cp210x: add some more GE USB IDs (Sebastian Reichel)
USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (Karan Singhal)
USB: serial: io_edgeport: fix memory leak in edge_startup (Pavel Skripkin)
usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (Forest Crossman)
xhci: Improve detection of device initiated wake signal. (Mathias Nyman)
usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (Yoshihiro Shimoda)
usb: gadget: f_uac1: stop playback on function disable (Ruslan Bilovol)
usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (Ruslan Bilovol)
USB: gadget: u_ether: Fix a configfs return code (Dan Carpenter)
Goodix Fingerprint device is not a modem (Yorick de Wid)
mmc: core: Fix partition switch time for eMMC (Adrian Hunter)
s390/dasd: fix hanging IO request during DASD driver unbind (Stefan Haberland)
s390/dasd: fix hanging DASD driver unbind (Stefan Haberland)
Revert 95ebabde382c (‘capabilities: Don’t allow writing ambiguous v3 file capabilities’) (Eric W. Biederman)
ALSA: usb-audio: Fix ‘cannot get freq eq’ errors on Dell AE515 sound bar (Takashi Iwai)
ALSA: hda: Avoid spurious unsol event handling during S3/S4 (Takashi Iwai)
ALSA: hda: Drop the BATCH workaround for AMD controllers (Takashi Iwai)
ALSA: hda/hdmi: Cancel pending works before suspend (Takashi Iwai)
scsi: libiscsi: Fix iscsi_prep_scsi_cmd_pdu() error handling (Mike Christie)
s390/smp: __smp_rescan_cpus() - move cpumask away from stack (Heiko Carstens)
PCI: mediatek: Add missing of_node_put() to fix reference leak (Krzysztof Wilczynski)
PCI: xgene-msi: Fix race in installing chained irq handler (Martin Kaiser)
powerpc/perf: Record counter overflow always if SAMPLE_IP is unset (Athira Rajeev)
powerpc: improve handling of unrecoverable system reset (Nicholas Piggin)
mmc: mediatek: fix race condition between msdc_request_timeout and irq (Chaotian Jing)
mmc: mxs-mmc: Fix a resource leak in an error handling path in ‘mxs_mmc_probe()’ (Christophe JAILLET)
udf: fix silent AED tagLocation corruption (Steven J. Magnani)
net: phy: fix save wrong speed and duplex problem if autoneg is on (Guangbin Huang)
media: usbtv: Fix deadlock on suspend (Maxim Mikityanskiy)
s390/cio: return -EFAULT if copy_to_user() fails (Eric Farman)
drm: meson_drv add shutdown function (Artem Lapkin)
drm/compat: Clear bounce structures (Daniel Vetter)
s390/cio: return -EFAULT if copy_to_user() fails again (Wang Qing)
perf traceevent: Ensure read cmdlines are null terminated. (Ian Rogers)
net: stmmac: stop each tx channel independently (Joakim Zhang)
net: davicom: Fix regulator not turned off on driver removal (Paul Cercueil)
net: davicom: Fix regulator not turned off on failed probe (Paul Cercueil)
net: lapbether: Remove netif_start_queue / netif_stop_queue (Xie He)
net: usb: qmi_wwan: allow qmimux add/del with master up (Daniele Palmas)
net: sched: avoid duplicates in classes dump (Maximilian Heyne)
net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10 (Ong Boon Leong)
net/mlx4_en: update moderation when config reset (Kevin(Yudong) Yang)
sh_eth: fix TRSCER mask for SH771x (Sergey Shtylyov)
Revert ‘mm, slub: consider rest of partial list if acquire_slab() fails’ (Linus Torvalds)
cifs: return proper error code in statfs(2) (Paulo Alcantara)
netfilter: x_tables: gpf inside xt_find_revision() (Vasily Averin)
can: flexcan: enable RX FIFO after FRZ/HALT valid (Joakim Zhang)
can: flexcan: assert FRZ bit in flexcan_chip_freeze() (Joakim Zhang)
can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (Oleksij Rempel)
net: avoid infinite loop in mpls_gso_segment when mpls_hlen == 0 (Balazs Nemeth)
net: Fix gro aggregation for udp encaps with zero csum (Daniel Borkmann)
ath9k: fix transmitting to stations in dynamic SMPS mode (Felix Fietkau)
ethernet: alx: fix order of calls on resume (Jakub Kicinski)
uapi: nfnetlink_cthelper.h: fix userspace compilation error (Dmitry V. Levin)
Linux 4.14.225 (Greg Kroah-Hartman)
drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (AngeloGioacchino Del Regno)
misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (Aswath Govindraju)
PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (Bjorn Helgaas)
platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (Hans de Goede)
platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (Hans de Goede)
platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (Hans de Goede)
platform/x86: acer-wmi: Add new force_caps module parameter (Hans de Goede)
platform/x86: acer-wmi: Cleanup accelerometer device handling (Hans de Goede)
platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (Hans de Goede)
mwifiex: pcie: skip cancel_work_sync() on reset failure path (Tsuchiya Yuto)
iommu/amd: Fix sleeping in atomic in increase_address_space() (Andrey Ryabinin)
dm table: fix iterate_devices based device capability checks (Jeffle Xu)
rsxx: Return -EFAULT if copy_to_user() fails (Dan Carpenter)
ALSA: ctxfi: cthw20k2: fix mask on conf to allow 4 bits (Colin Ian King)
usbip: tools: fix build error for multiple definition (Antonio Borneo)
btrfs: fix raid6 qstripe kmap (Ira Weiny)
btrfs: raid56: simplify tracking of Q stripe presence (David Sterba)
Linux 4.14.224 (Greg Kroah-Hartman)
media: v4l: ioctl: Fix memory leak in video_usercopy (Sakari Ailus)
swap: fix swapfile read/write offset (Jens Axboe)
zsmalloc: account the number of compacted pages correctly (Rokudo Yan)
xen-netback: respect gnttab_map_refs()'s return value (Jan Beulich)
parisc: Bump 64-bit IRQ stack size to 64 KB (John David Anglin)
f2fs: handle unallocated section and zone on pinned/atgc (Jaegeuk Kim)
media: uvcvideo: Allow entities with no pads (Ricardo Ribalda)
staging: most: sound: add sanity check for function argument (Christian Gromm)
Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (Gopal Tiwari)
x86/build: Treat R_386_PLT32 relocation as R_386_PC32 (Fangrui Song)
ath10k: fix wmi mgmt tx queue full due to race condition (Miaoqing Pan)
pktgen: fix misuse of BUG_ON() in pktgen_thread_worker() (Di Zhu)
wlcore: Fix command execute failure 19 for wl12xx (Tony Lindgren)
vt/consolemap: do font sum unsigned (Jiri Slaby)
x86/reboot: Add Zotac ZBOX CI327 nano PCI reboot quirk (Heiner Kallweit)
staging: fwserial: Fix error handling in fwserial_create (Dinghao Liu)
dt-bindings: net: btusb: DT fix s/interrupt-name/interrupt-names/ (Geert Uytterhoeven)
net: bridge: use switchdev for port flags set through sysfs too (Vladimir Oltean)
mm/hugetlb.c: fix unnecessary address expansion of pmd sharing (Li Xinhai)
net: fix up truesize of cloned skb in skb_prepare_for_shift() (Marco Elver)
smackfs: restrict bytes count in smackfs write functions (Sabyrzhan Tasbolatov)
xfs: Fix assert failure in xfs_setattr_size() (Yumei Huang)
media: mceusb: sanity check for prescaler value (Sean Young)
JFS: more checks for invalid superblock (Randy Dunlap)
arm64: Use correct ll/sc atomic constraints (Andrew Murray)
arm64: cmpxchg: Use ‘K’ instead of ‘L’ for ll/sc immediate constraint (Will Deacon)
arm64: Avoid redundant type conversions in xchg() and cmpxchg() (Will Deacon)
arm64 module: set plt* section addresses to 0x0 (Shaoying Xu)
virtio/s390: implement virtio-ccw revision 2 correctly (Cornelia Huck)
drm/virtio: use kvmalloc for large allocations (Sergey Senozhatsky)
hugetlb: fix update_and_free_page contig page struct assumption (Mike Kravetz)
scripts: set proper OpenSSL include dir also for sign-file (Rolf Eike Beer)
scripts: use pkg-config to locate libcrypto (Rolf Eike Beer)
net: usb: qmi_wwan: support ZTE P685M modem (Lech Perczak)
[4.14.35-2047.506.0.el7]
Linux 4.14.223 (Greg Kroah-Hartman)
dm era: Update in-core bitset after committing the metadata (Nikos Tsironis)
net: icmp: pass zeroed opts from icmp{,v6}_ndo_send before sending (Jason A. Donenfeld)
ipv6: silence compilation warning for non-IPV6 builds (Leon Romanovsky)
ipv6: icmp6: avoid indirect call for icmpv6_send() (Eric Dumazet)
sunvnet: use icmp_ndo_send helper (Jason A. Donenfeld)
gtp: use icmp_ndo_send helper (Jason A. Donenfeld)
icmp: allow icmpv6_ndo_send to work with CONFIG_IPV6=n (Jason A. Donenfeld)
icmp: introduce helper for nat’d source address in network device context (Jason A. Donenfeld)
dm era: only resize metadata in preresume (Nikos Tsironis)
dm era: Reinitialize bitset cache before digesting a new writeset (Nikos Tsironis)
dm era: Use correct value size in equality function of writeset tree (Nikos Tsironis)
dm era: Fix bitset memory leaks (Nikos Tsironis)
dm era: Verify the data block size hasn’t changed (Nikos Tsironis)
dm era: Recover committed writeset after crash (Nikos Tsironis)
gfs2: Don’t skip dlm unlock if glock has an lvb (Bob Peterson)
sparc32: fix a user-triggerable oops in clear_user() (Al Viro)
f2fs: fix out-of-repair __setattr_copy() (Chao Yu)
printk: fix deadlock when kernel panic (Muchun Song)
gpio: pcf857x: Fix missing first interrupt (Maxim Kiselev)
mmc: sdhci-esdhc-imx: fix kernel panic when remove module (Frank Li)
module: Ignore GLOBAL_OFFSET_TABLE when warning for undefined symbols (Fangrui Song)
libnvdimm/dimm: Avoid race between probe and available_slots_show() (Dan Williams)
usb: renesas_usbhs: Clear pipe running flag in usbhs_pkt_pop() (Yoshihiro Shimoda)
mm: hugetlb: fix a race between freeing and dissolving the page (Muchun Song)
hugetlb: fix copy_huge_page_from_user contig page struct assumption (Mike Kravetz)
fs/affs: release old buffer head on error path (Pan Bian)
mtd: spi-nor: hisi-sfc: Put child node np on error path (Pan Bian)
watchdog: mei_wdt: request stop on unregister (Alexander Usyskin)
arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing (He Zhe)
floppy: reintroduce O_NDELAY fix (Jiri Kosina)
x86/reboot: Force all cpus to exit VMX root if VMX is supported (Sean Christopherson)
staging: rtl8188eu: Add Edimax EW-7811UN V2 to device table (Martin Kaiser)
drivers/misc/vmw_vmci: restrict too big queue size in qp_host_alloc_queue (Sabyrzhan Tasbolatov)
seccomp: Add missing return in non-void function (Paul Cercueil)
crypto: sun4i-ss - handle BigEndian for cipher (Corentin Labbe)
crypto: sun4i-ss - checking sg length is not sufficient (Corentin Labbe)
btrfs: fix extent buffer leak on failure to copy root (Filipe Manana)
btrfs: fix reloc root leak with 0 ref reloc roots on recovery (Josef Bacik)
btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (Josef Bacik)
KEYS: trusted: Fix migratable=1 failing (Jarkko Sakkinen)
tpm_tis: Fix check_locality for correct locality acquisition (James Bottomley)
ALSA: hda/realtek: modify EAPD in the ALC886 (PeiSen Hou)
usb: dwc3: gadget: Fix dep->interval for fullspeed interrupt (Thinh Nguyen)
usb: dwc3: gadget: Fix setting of DEPCFG.bInterval_m1 (Thinh Nguyen)
USB: serial: mos7720: fix error code in mos7720_write() (Dan Carpenter)
USB: serial: mos7840: fix error code in mos7840_write() (Dan Carpenter)
usb: musb: Fix runtime PM race in musb_queue_resume_work (Paul Cercueil)
USB: serial: option: update interface mapping for ZTE P685M (Lech Perczak)
Input: i8042 - add ASUS Zenbook Flip to noselftest list (Marcos Paulo de Souza)
Input: joydev - prevent potential read overflow in ioctl (Dan Carpenter)
Input: xpad - add support for PowerA Enhanced Wired Controller for Xbox Series X|S (Olivier Crate)
Input: raydium_ts_i2c - do not send zero length (jeffrey.lin)
HID: wacom: Ignore attempts to overwrite the touch_max value from HID (Jason Gerecke)
ACPI: configfs: add missing check after configfs_register_default_group() (Qinglang Miao)
ACPI: property: Fix fwnode string properties matching (Rafael J. Wysocki)
blk-settings: align max_sectors on ‘logical_block_size’ boundary (Mikulas Patocka)
scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (Randy Dunlap)
mm/rmap: fix potential pte_unmap on an not mapped pte (Miaohe Lin)
i2c: brcmstb: Fix brcmstd_send_i2c_cmd condition (Maxime Ripard)
arm64: Add missing ISB after invalidating TLB in __primary_switch (Marc Zyngier)
mm/hugetlb: fix potential double free in hugetlb_register_node() error path (Miaohe Lin)
mm/memory.c: fix potential pte_unmap_unlock pte error (Miaohe Lin)
ocfs2: fix a use after free on error (Dan Carpenter)
net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (Chuhong Yuan)
i40e: Fix overwriting flow control settings during driver loading (Mateusz Palczewski)
i40e: Fix flow for IPv6 next header (extension header) (Slawomir Laba)
ext4: fix potential htree index checksum corruption (Theodore Ts’o)
drm/msm/dsi: Correct io_start for MSM8994 (20nm PHY) (Konrad Dybcio)
PCI: Align checking of syscall user config accessors (Heiner Kallweit)
VMCI: Use set_page_dirty_lock() when unregistering guest memory (Jorgen Hansen)
pwm: rockchip: rockchip_pwm_probe(): Remove superfluous clk_unprepare() (Simon South)
misc: eeprom_93xx46: Add module alias to avoid breaking support for non device tree users (Aswath Govindraju)
misc: eeprom_93xx46: Fix module alias to enable module autoprobe (Aswath Govindraju)
sparc64: only select COMPAT_BINFMT_ELF if BINFMT_ELF is set (Randy Dunlap)
Input: elo - fix an error code in elo_connect() (Dan Carpenter)
perf test: Fix unaligned access in sample parsing test (Namhyung Kim)
perf intel-pt: Fix missing CYC processing in PSB (Adrian Hunter)
spi: pxa2xx: Fix the controller numbering for Wildcat Point (Andy Shevchenko)
powerpc/8xx: Fix software emulation interrupt (Christophe Leroy)
powerpc/pseries/dlpar: handle ibm, configure-connector delay status (Nathan Lynch)
mfd: wm831x-auxadc: Prevent use after free in wm831x_auxadc_read_irq() (Dan Carpenter)
spi: stm32: properly handle 0 byte transfer (Alain Volmat)
RDMA/rxe: Fix coding error in rxe_recv.c (Bob Pearson)
perf tools: Fix DSO filtering when not finding a map for a sampled address (Arnaldo Carvalho de Melo)
tracepoint: Do not fail unregistering a probe due to memory failure (Steven Rostedt (VMware))
amba: Fix resource leak for drivers without .remove (Uwe Kleine-Konig)
ARM: 9046/1: decompressor: Do not clear SCTLR.nTLSMD for ARMv7+ cores (Vladimir Murzin)
mmc: usdhi6rol0: Fix a resource leak in the error handling path of the probe (Christophe JAILLET)
powerpc/47x: Disable 256k page size (Christophe Leroy)
IB/umad: Return EIO in case of when device disassociated (Shay Drory)
auxdisplay: ht16k33: Fix refresh rate handling (Geert Uytterhoeven)
isofs: release buffer head before return (Pan Bian)
spi: atmel: Put allocated master before return (Pan Bian)
certs: Fix blacklist flag type confusion (David Howells)
regulator: axp20x: Fix reference cout leak (Pan Bian)
clocksource/drivers/mxs_timer: Add missing semicolon when DEBUG is defined (Tom Rix)
rtc: s5m: select REGMAP_I2C (Bartosz Golaszewski)
power: reset: at91-sama5d2_shdwc: fix wkupdbc mask (Claudiu Beznea)
of/fdt: Make sure no-map does not remove already reserved regions (Nicolas Boichat)
fdt: Properly handle ‘no-map’ field in the memory region (KarimAllah Ahmed)
mfd: bd9571mwv: Use devm_mfd_add_devices() (Yoshihiro Shimoda)
dmaengine: hsu: disable spurious interrupt (Ferry Toth)
dmaengine: fsldma: Fix a resource leak in an error handling path of the probe function (Christophe JAILLET)
dmaengine: fsldma: Fix a resource leak in the remove function (Christophe JAILLET)
HID: core: detect and skip invalid inputs to snto32() (Randy Dunlap)
spi: cadence-quadspi: Abort read if dummy cycles required are too many (Pratyush Yadav)
clk: meson: clk-pll: fix initializing the old rate (fallback) for a PLL (Martin Blumenstingl)
capabilities: Don’t allow writing ambiguous v3 file capabilities (Eric W. Biederman)
jffs2: fix use after free in jffs2_sum_write_data() (Tom Rix)
fs/jfs: fix potential integer overflow on shift of a int (Colin Ian King)
ima: Free IMA measurement buffer after kexec syscall (Lakshmi Ramasubramanian)
ima: Free IMA measurement buffer on error (Lakshmi Ramasubramanian)
crypto: ecdh_helper - Ensure ‘len >= secret.len’ in decode_key() (Daniele Alessandrelli)
hwrng: timeriomem - Fix cooldown period calculation (Jan Henrik Weinstock)
btrfs: clarify error returns values in __load_free_space_cache (Zhihao Cheng)
Drivers: hv: vmbus: Avoid use-after-free in vmbus_onoffer_rescind() (Andrea Parri (Microsoft))
ata: ahci_brcm: Add back regulators management (Florian Fainelli)
media: uvcvideo: Accept invalid bFormatIndex and bFrameIndex values (Laurent Pinchart)
media: pxa_camera: declare variable when DEBUG is defined (Tom Rix)
media: cx25821: Fix a bug when reallocating some dma memory (Christophe JAILLET)
media: qm1d1c0042: fix error return code in qm1d1c0042_init() (Luo Meng)
media: lmedm04: Fix misuse of comma (Joe Perches)
crypto: bcm - Rename struct device_private to bcm_device_private (Jiri Olsa)
ASoC: cs42l56: fix up error handling in probe (Dan Carpenter)
media: tm6000: Fix memleak in tm6000_start_stream (Dinghao Liu)
media: media/pci: Fix memleak in empress_init (Dinghao Liu)
media: vsp1: Fix an error handling path in the probe function (Christophe JAILLET)
media: i2c: ov5670: Fix PIXEL_RATE minimum value (Jacopo Mondi)
MIPS: lantiq: Explicitly compare LTQ_EBU_PCC_ISTAT against 0 (Nathan Chancellor)
MIPS: c-r4k: Fix section mismatch for loongson2_sc_init (Nathan Chancellor)
crypto: sun4i-ss - fix kmap usage (Corentin Labbe)
gma500: clean up error handling in init (Dan Carpenter)
drm/gma500: Fix error return code in psb_driver_load() (Jialin Zhang)
fbdev: aty: SPARC64 requires FB_ATY_CT (Randy Dunlap)
net: mvneta: Remove per-cpu queue mapping for Armada 3700 (Maxime Chevallier)
net: amd-xgbe: Reset link when the link never comes back (Shyam Sundar S K)
net: amd-xgbe: Reset the PHY rx data path when mailbox command timeout (Shyam Sundar S K)
ibmvnic: skip send_request_unmap for timeout reset (Lijun Pan)
b43: N-PHY: Fix the update of coef for the PHY revision >= 3case (Colin Ian King)
mac80211: fix potential overflow when multiplying to u32 integers (Colin Ian King)
bnxt_en: reverse order of TX disable and carrier off (Edwin Peer)
ath9k: fix data bus crash when setting nf_override via debugfs (Linus Lussing)
bpf_lru_list: Read double-checked variable once without lock (Marco Elver)
ARM: s3c: fix fiq for clang IAS (Arnd Bergmann)
arm64: dts: msm8916: Fix reserved and rfsa nodes unit address (Vincent Knecht)
staging: rtl8723bs: wifi_regd.c: Fix incorrect number of regulatory rules (Chen-Yu Tsai)
usb: dwc2: Make ‘trimming xfer length’ a debug message (Guenter Roeck)
usb: dwc2: Abort transaction after errors with unknown reason (Guenter Roeck)
usb: dwc2: Do not update data length if it is 0 on inbound transfers (Guenter Roeck)
ARM: dts: Configure missing thermal interrupt for 4430 (Tony Lindgren)
Bluetooth: Put HCI device if inquiry procedure interrupts (Pan Bian)
Bluetooth: drop HCI device reference before return (Pan Bian)
usb: gadget: u_audio: Free requests only after callback (Jack Pham)
cpufreq: brcmstb-avs-cpufreq: Fix resource leaks in ->remove() (Christophe JAILLET)
arm64: dts: exynos: correct PMIC interrupt trigger level on Espresso (Krzysztof Kozlowski)
arm64: dts: exynos: correct PMIC interrupt trigger level on TM2 (Krzysztof Kozlowski)
ARM: dts: exynos: correct PMIC interrupt trigger level on Arndale Octa (Krzysztof Kozlowski)
ARM: dts: exynos: correct PMIC interrupt trigger level on Spring (Krzysztof Kozlowski)
ARM: dts: exynos: correct PMIC interrupt trigger level on Rinato (Krzysztof Kozlowski)
ARM: dts: exynos: correct PMIC interrupt trigger level on Monk (Krzysztof Kozlowski)
Bluetooth: Fix initializing response id after clearing struct (Christopher William Snowhill)
Bluetooth: btqcomsmd: Fix a resource leak in error handling paths in the probe function (Christophe JAILLET)
random: fix the RNDRESEEDCRNG ioctl (Eric Biggers)
MIPS: vmlinux.lds.S: add missing PAGE_ALIGNED_DATA() section (Alexander Lobakin)
kdb: Make memory allocations more robust (Sumit Garg)
vmlinux.lds.h: add DWARF v5 sections (Nick Desaulniers)
scripts/recordmcount.pl: support big endian for ARCH sh (Rong Chen)
cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath. (Shyam Prasad N)
NET: usb: qmi_wwan: Adding support for Cinterion MV31 (Christoph Schemmel)
arm64: tegra: Add power-domain for Tegra210 HDA (Sameer Pujar)
ntfs: check for valid standard information attribute (Rustam Kovhaev)
usb: quirks: add quirk to start video capture on ELMO L-12F document camera reliable (Stefan Ursella)
HID: make arrays usage and value to be the same (Will McVicker)
Linux 4.14.222 (Greg Kroah-Hartman)
kvm: check tlbs_dirty directly (Lai Jiangshan)
usb: gadget: u_ether: Fix MTU size mismatch with RX packet size (Manish Narani)
USB: Gadget Ethernet: Re-enable Jumbo frames. (John Greb)
scsi: qla2xxx: Fix crash during driver load on big endian machines (Arun Easi)
xen/arm: don’t ignore return errors from set_phys_to_machine (Stefano Stabellini)
tracing: Avoid calling cc-option -mrecord-mcount for every Makefile (Vasily Gorbik)
tracing: Fix SKIP_STACK_VALIDATION=1 build due to bad merge with -mrecord-mcount (Greg Thelen)
trace: Use -mcount-record for dynamic ftrace (Andi Kleen)
x86/build: Disable CET instrumentation in the kernel for 32-bit too (Borislav Petkov)
h8300: fix PREEMPTION build, TI_PRE_COUNT undefined (Randy Dunlap)
i2c: stm32f7: fix configuration of the digital filter (Alain Volmat)
vsock: fix locking in vsock_shutdown() (Stefano Garzarella)
vsock/virtio: update credit only if socket is not closed (Stefano Garzarella)
net: watchdog: hold device global xmit lock during tx disable (Edwin Peer)
net/vmw_vsock: improve locking in vsock_connect_timeout() (Norbert Slusarek)
usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one (Serge Semin)
usb: dwc3: ulpi: fix checkpatch warning (Felipe Balbi)
netfilter: conntrack: skip identical origin tuple in same zone only (Florian Westphal)
netfilter: xt_recent: Fix attempt to update deleted entry (Jozsef Kadlecsik)
bpf: Check for integer overflow when using roundup_pow_of_two() (Bui Quang Minh)
memblock: do not start bottom-up allocations with kernel_end (Roman Gushchin)
ARM: ensure the signal page contains defined contents (Russell King)
ARM: dts: lpc32xx: Revert set default clock rate of HCLK PLL (Alexandre Belloni)
ovl: skip getxattr of security labels (Amir Goldstein)
cap: fix conversions on getxattr (Miklos Szeredi)
ovl: perform vfs_getxattr() with mounter creds (Miklos Szeredi)
platform/x86: hp-wmi: Disable tablet-mode reporting by default (Hans de Goede)
arm64: dts: rockchip: Fix PCIe DT properties on rk3399 (Marc Zyngier)
MIPS: BMIPS: Fix section mismatch warning (Jaedon Shin)
arm/xen: Don’t probe xenbus as part of an early initcall (Julien Grall)
tracing: Check length before giving out the filter buffer (Steven Rostedt (VMware))
tracing: Do not count ftrace events in top level enable output (Steven Rostedt (VMware))
squashfs: add more sanity checks in xattr id lookup (Phillip Lougher)
squashfs: add more sanity checks in inode lookup (Phillip Lougher)
squashfs: add more sanity checks in id lookup (Phillip Lougher)
memcg: fix a crash in wb_workfn when a device disappears (Theodore Ts’o)
include/trace/events/writeback.h: fix -Wstringop-truncation warnings (Qian Cai)
lib/string: Add strscpy_pad() function (Tobin C. Harding)
SUNRPC: Handle 0 length opaque XDR object data properly (Dave Wysochanski)
SUNRPC: Move simple_get_bytes and simple_get_netobj into private header (Dave Wysochanski)
iwlwifi: mvm: guard against device removal in reprobe (Johannes Berg)
iwlwifi: pcie: add a NULL check in iwl_pcie_txq_unmap (Emmanuel Grumbach)
iwlwifi: mvm: take mutex for calling iwl_mvm_get_sync_time() (Johannes Berg)
pNFS/NFSv4: Try to return invalid layout in pnfs_layout_process() (Trond Myklebust)
af_key: relax availability checks for skb size calculation (Cong Wang)
remoteproc: qcom_q6v5_mss: Validate MBA firmware size before load (Sibi Sankar)
remoteproc: qcom_q6v5_mss: Validate modem blob firmware size before load (Sibi Sankar)
fgraph: Initialize tracing_graph_pause at task creation (Steven Rostedt (VMware))
Linux 4.14.221 (Greg Kroah-Hartman)
net: dsa: mv88e6xxx: override existent unicast portvec in port_fdb_add (DENG Qingfang)
iommu/vt-d: Do not use flush-queue when caching-mode is on (Nadav Amit)
Input: xpad - sync supported devices with fork on GitHub (Benjamin Valentin)
x86/apic: Add extra serialization for non-serializing MSRs (Dave Hansen)
mm: thp: fix MADV_REMOVE deadlock on shmem THP (Hugh Dickins)
mm: hugetlb: remove VM_BUG_ON_PAGE from page_huge_active (Muchun Song)
mm: hugetlb: fix a race between isolating and freeing page (Muchun Song)
mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (Muchun Song)
ARM: footbridge: fix dc21285 PCI configuration accessors (Russell King)
nvme-pci: avoid the deepest sleep state on Kingston A2000 SSDs (Thorsten Leemhuis)
mmc: core: Limit retries when analyse of SDIO tuples fails (Fengnan Chang)
smb3: Fix out-of-bounds bug in SMB2_negotiate() (Gustavo A. R. Silva)
cifs: report error instead of invalid when revalidating a dentry fails (Aurelien Aptel)
xhci: fix bounce buffer usage for non-sg list case (Mathias Nyman)
kretprobe: Avoid re-registration of the same kretprobe earlier (Wang ShaoBo)
mac80211: fix station rate table updates on assoc (Felix Fietkau)
ovl: fix dentry leak in ovl_get_redirect (Liangyan)
usb: dwc2: Fix endpoint direction check in ep_from_windex (Heiko Stuebner)
USB: usblp: don’t call usb_set_interface if there’s a single alt (Jeremy Figgins)
USB: gadget: legacy: fix an error code in eth_bind() (Dan Carpenter)
ipv4: fix race condition between route lookup and invalidation (Wei Wang)
elfcore: fix building with clang (Arnd Bergmann)
objtool: Support Clang non-section symbols in ORC generation (Josh Poimboeuf)
net: lapb: Copy the skb before sending a packet (Xie He)
arm64: dts: ls1046a: fix dcfg address range (Zyta Szpak)
USB: serial: option: Adding support for Cinterion MV31 (Christoph Schemmel)
USB: serial: cp210x: add new VID/PID for supporting Teraoka AD2000 (Chenxin Jin)
USB: serial: cp210x: add pid/vid for WSDA-200-USB (Pho Tran)
Linux 4.14.220 (Greg Kroah-Hartman)
kthread: Extract KTHREAD_IS_PER_CPU (Peter Zijlstra)
objtool: Don’t fail on missing symbol table (Josh Poimboeuf)
scsi: ibmvfc: Set default timeout to avoid crash during migration (Brian King)
mac80211: fix fast-rx encryption check (Felix Fietkau)
scsi: libfc: Avoid invoking response handler twice if ep is already completed (Javed Hasan)
scsi: scsi_transport_srp: Don’t block target in failfast state (Martin Wilck)
x86: __always_inline __{rd,wr}msr() (Peter Zijlstra)
phy: cpcap-usb: Fix warning for missing regulator_disable (Tony Lindgren)
driver core: Extend device_is_dependent() (Rafael J. Wysocki)
base: core: Remove WARN_ON from link dependencies check (Benjamin Gaignard)
net_sched: gen_estimator: support large ewma log (Eric Dumazet)
net_sched: reject silly cell_log in qdisc_get_rtab() (Eric Dumazet)
ACPI: thermal: Do not call acpi_thermal_check() directly (Rafael J. Wysocki)
ibmvnic: Ensure that CRQ entry read are correctly ordered (Lijun Pan)
net: dsa: bcm_sf2: put device node before return (Pan Bian)
rds/ib: move rds_ib_clear_irq_miss() to .h file (Manjunath Patil) [Orabug: 33044345]
rds/ib: recover rds connection from interrupt loss scenario (Manjunath Patil) [Orabug: 32804265]
rds/ib: handle posted ACK during connection shutdown (Manjunath Patil) [Orabug: 32863569]
rds/ib: reap tx completions during connection shutdown (Manjunath Patil) [Orabug: 32863569]
xfs: fix xlog_finish_defer_ops (Wengang Wang) [Orabug: 32982355]
Revert ‘Allow mce to reset instead of panic on UE’ (William Roche) [Orabug: 32820277]

OSVersionArchitecturePackageVersionFilename
oracle linux7srckernel-uek-container< 4.14.35-2047.506.8.el7kernel-uek-container-4.14.35-2047.506.8.el7.src.rpm
oracle linux7x86_64kernel-uek-container< 4.14.35-2047.506.8.el7kernel-uek-container-4.14.35-2047.506.8.el7.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	7	src	kernel-uek-container	< 4.14.35-2047.506.8.el7	kernel-uek-container-4.14.35-2047.506.8.el7.src.rpm
oracle linux	7	x86_64	kernel-uek-container	< 4.14.35-2047.506.8.el7	kernel-uek-container-4.14.35-2047.506.8.el7.x86_64.rpm